$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/cIeB358CYvzKjOxm3lnsPAQdynE.roa File: cIeB358CYvzKjOxm3lnsPAQdynE.roa (raw, json) Hash identifier: wqL0SN2Ma+4ouwLMb6yc7qd7DIFSg1cNgcVxt7CjJIA= Subject key identifier: 70:87:81:DF:9F:02:62:FC:CA:8C:EC:66:DE:59:EC:3C:04:1D:CA:71 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 2A Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/cIeB358CYvzKjOxm3lnsPAQdynE.roa Signing time: Wed 10 Jan 2024 01:11:10 +0000 ROA not before: Wed 10 Jan 2024 01:11:10 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 05:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 10 01:11:10 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=708781DF9F0262FCCA8CEC66DE59EC3C041DCA71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ca:7e:49:60:dc:40:20:da:fb:52:88:61:26: 20:5a:1b:4e:4d:75:95:d3:e4:c2:dc:04:32:e5:df: 99:11:36:90:e8:9a:b3:b4:c5:46:ba:17:a9:a7:4e: d7:94:49:9f:d1:59:ea:c1:2a:c4:36:67:b6:f5:ad: b2:22:0f:88:2f:69:c9:69:c0:5e:21:e6:de:e3:f1: 75:ef:e8:26:19:75:f5:83:a4:a0:d1:ce:2e:f5:04: 5b:f6:5f:fe:83:e7:c7:d0:ac:a6:1c:05:c5:a8:67: 78:4c:c1:6c:2b:fc:09:59:09:8d:f6:52:6d:dc:89: 73:e0:f0:f1:5a:0a:80:d4:25:75:df:e2:31:a0:57: b8:3d:2f:c2:5c:9d:a8:f9:d0:20:d5:a1:45:6b:7f: 51:e4:70:b1:9c:4c:64:69:c7:26:58:4c:3b:6b:91: 46:2f:5b:c5:c8:08:11:84:c9:70:30:63:23:99:6d: 3e:ac:18:43:0c:27:63:48:ab:a8:bd:70:de:6b:87: a6:e8:3f:14:4c:18:91:c5:34:8d:c4:fb:3d:65:4d: 36:c2:49:1b:ef:31:34:ec:5e:55:95:56:71:81:e2: dc:8f:c5:3d:03:42:ca:90:1f:14:d9:2c:c6:95:67: a8:ad:ad:5e:9a:bf:16:cb:ea:14:84:99:d6:c4:25: 29:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:87:81:DF:9F:02:62:FC:CA:8C:EC:66:DE:59:EC:3C:04:1D:CA:71 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/cIeB358CYvzKjOxm3lnsPAQdynE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.68.0/23 Signature Algorithm: sha256WithRSAEncryption b3:06:43:d3:00:fd:85:13:c4:e2:1c:d0:a8:b6:d9:3a:f6:e9: e9:33:ed:94:6e:48:ff:b4:69:bd:04:f0:a5:fd:cf:62:b4:0a: ad:c8:45:39:b6:a8:0b:3f:1a:6e:22:63:b8:8f:de:5b:4e:53: b7:e4:0d:11:10:d5:91:6f:95:ce:05:1c:29:8a:9e:3a:f8:63: bd:85:be:bd:65:00:7f:8a:26:6c:1f:c2:15:52:23:e8:29:8e: 3f:f8:c5:05:93:a9:49:b9:41:6b:6f:b7:1d:16:da:fb:90:40: fb:72:89:0d:2f:36:2f:15:22:cd:a5:14:a4:b9:e8:0e:2d:b4: 50:33:7a:2b:d6:59:a3:92:e0:d8:d6:37:2d:84:55:5b:2c:75: f2:fc:90:02:06:32:59:f9:a8:9c:a8:ec:d7:7e:05:47:58:a2: 00:97:58:41:5a:56:0e:a8:7a:de:72:1a:87:77:59:b9:ad:40: f6:a2:ce:57:63:0f:cc:f0:59:18:49:32:62:f0:28:75:17:f1: ea:13:1e:00:14:9b:bd:b9:9c:63:2a:b4:7a:0c:8e:c8:ef:4f: 1e:88:eb:d2:27:aa:d7:4f:62:1d:36:4b:a9:33:d3:cd:95:fc: c9:04:52:33:15:45:00:a5:db:26:a3:44:7a:3b:c3:40:1c:35: eb:a9:02:bf -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDExMDAx MTExMFoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoNzA4NzgxREY5RjAyNjJG Q0NBOENFQzY2REU1OUVDM0MwNDFEQ0E3MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKfKfklg3EAg2vtSiGEmIFobTk11ldPkwtwEMuXfmRE2kOias7TF RroXqadO15RJn9FZ6sEqxDZntvWtsiIPiC9pyWnAXiHm3uPxde/oJhl19YOkoNHO LvUEW/Zf/oPnx9CsphwFxahneEzBbCv8CVkJjfZSbdyJc+Dw8VoKgNQldd/iMaBX uD0vwlydqPnQINWhRWt/UeRwsZxMZGnHJlhMO2uRRi9bxcgIEYTJcDBjI5ltPqwY QwwnY0irqL1w3muHpug/FEwYkcU0jcT7PWVNNsJJG+8xNOxeVZVWcYHi3I/FPQNC ypAfFNksxpVnqK2tXpq/FsvqFISZ1sQlKf0CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRwh4HfnwJi/MqM7GbeWew8BB3KcTAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L2NJZUIzNThDWXZ6S2pPeG0zbG5zUEFRZHluRS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGg+EQwDQYJKoZIhvcNAQELBQADggEBALMGQ9MA/YUTxOIc0Ki22Tr26ekz7ZRu SP+0ab0E8KX9z2K0Cq3IRTm2qAs/Gm4iY7iP3ltOU7fkDREQ1ZFvlc4FHCmKnjr4 Y72Fvr1lAH+KJmwfwhVSI+gpjj/4xQWTqUm5QWtvtx0W2vuQQPtyiQ0vNi8VIs2l FKS56A4ttFAzeivWWaOS4NjWNy2EVVssdfL8kAIGMln5qJyo7Nd+BUdYogCXWEFa Vg6oet5yGod3WbmtQPaizldjD8zwWRhJMmLwKHUX8eoTHgAUm725nGMqtHoMjsjv Tx6I69InqtdPYh02S6kz082V/MkEUjMVRQCl2yajRHo7w0AcNeupAr8= -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:33 2024 by rpki-client on console-ams.rpki-client.org